Yard Radius Project

Yard Radius

4 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
7.5

CVE-2013-4147

  • EPSS 10.57%
  • Published 09.08.2013 21:55:06
  • Last modified 11.04.2025 00:51:21

Multiple format string vulnerabilities in Yet Another Radius Daemon (YARD RADIUS) 1.1.2 allow context-dependent attackers to cause a denial of service (crash) or possibly execute arbitrary code via format string specifiers in a request in the (1) log...

10

CVE-2004-0987

  • EPSS 5.48%
  • Published 10.01.2005 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code.

7.5

CVE-2001-1376

  • EPSS 29.86%
  • Published 04.03.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

Buffer overflow in digest calculation function of multiple RADIUS implementations allows remote attackers to cause a denial of service and possibly execute arbitrary code via shared secret data.

5

CVE-2001-1377

  • EPSS 10.28%
  • Published 04.03.2002 05:00:00
  • Last modified 03.04.2025 01:03:51

Multiple RADIUS implementations do not properly validate the Vendor-Length of the Vendor-Specific attribute, which allows remote attackers to cause a denial of service (crash) via a Vendor-Length that is less than 2.